On 21 May 2013, at 21:05, Sean Turner <[email protected]> wrote: > I've been informally asking around about what people might think about > requesting that ietf.org add support for DANE. Support isn't there yet in > the browsers but folks have to deploy it on the server side and I think it > might as well be us. I know it's likely not going to be be as simple just > asking, but I'd hear what the WG thinks about the idea.
A fantastic idea, but while 99.99% of all browsers don't yet support DANE, I think it would be imprudent to drop the CA-signed requirement at the moment. This isn't a problem; just use the hashes for CA-signed certs in the TLSA records. Cheers, Sabahattin _______________________________________________ dane mailing list [email protected] https://www.ietf.org/mailman/listinfo/dane
